Certificate
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/-wZCMPPjm--7c6fU3bJv4tRG7iU.cer
File: -wZCMPPjm--7c6fU3bJv4tRG7iU.cer (raw, json)
Hash identifier: 7ddM0G6oGaINiNNe5OA8MkZbWdrYfVGDY4gbm/xt4hc=
Subject key identifier: FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
Authority key identifier: A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
Certificate issuer: /CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Certificate serial: 2B13
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
Manifest: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.mft
caRepository: rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/
Notify URL: https://rrdp.twnic.tw/rrdp/notify.xml
Certificate not before: Fri 05 Jan 2024 08:52:07 +0000
Certificate not after: Sat 31 Aug 2024 03:10:53 +0000
Subordinate resources: AS: 7482
AS: 9311
AS: 17709
AS: 24154 -- 24155
AS: 131142
AS: 131591
AS: 131594
IP: 43.240.104.0/22
IP: 60.244.0.0/16
IP: 101.136.0.0/14
IP: 103.36.116.0/22
IP: 103.231.48.0/22
IP: 124.218.0.0 -- 124.219.127.255
IP: 202.178.128.0/17
IP: 203.79.128.0/17
IP: 203.201.32.0/20
IP: 203.207.32.0/20
IP: 210.58.0.0/16
IP: 210.63.192.0/18
IP: 210.85.0.0/16
IP: 210.200.0.0 -- 210.202.55.255
IP: 210.202.64.0 -- 210.203.127.255
IP: 218.35.0.0/16
IP: 218.187.0.0/16
IP: 219.91.0.0/17
IP: 222.156.0.0/15
IP: 222.251.0.0/17
IP: 223.22.0.0/15
IP: 2001:f10::/32
IP: 2400:fc80::/32
IP: 2404::/26
Validation: Failed, certificate revoked on Mon 15 Jan 2024 20:11:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 11027 (0x2b13)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A91BDB290000/serialNumber=A23A7C63547118AAE497F03E13121C96AB34547E
Validity
Not Before: Jan 5 08:52:07 2024 GMT
Not After : Aug 31 03:10:53 2024 GMT
Subject: CN=FB064230F3E39BEFBB73A7D4DDB26FE2D446EE25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:fb:dc:76:7d:09:99:a1:bd:dc:69:54:be:54:
de:1a:20:7b:1c:3b:42:a9:7b:57:8b:29:50:7a:88:
59:66:c9:f1:d1:40:f5:23:0e:19:f3:5d:35:44:41:
ac:9e:99:05:4c:0a:33:36:9f:a8:4b:2b:96:e3:bb:
4b:3a:21:c2:58:bd:55:3a:55:80:d3:92:d0:0f:fc:
3e:58:c0:bd:1d:67:50:8b:a5:b0:a5:d8:b2:70:a6:
7e:ef:d9:ff:c9:71:53:f0:aa:be:65:0a:19:89:0e:
81:bc:18:7b:2b:5b:76:3d:48:b6:06:25:b3:bf:36:
45:e4:08:9b:95:82:56:12:bd:bb:8d:29:d0:f1:89:
b4:6b:e0:dc:5d:86:01:0e:42:05:9b:68:56:88:b4:
9f:7c:52:75:74:19:68:f9:87:81:dd:77:60:d0:9c:
d5:f0:6c:11:d3:ee:f9:b2:64:7c:db:3e:0c:8f:68:
11:44:0e:18:07:45:ab:a0:eb:75:b1:f3:9a:df:fe:
b3:ce:af:70:9c:64:d0:69:2e:15:2c:28:ef:4b:6e:
dd:79:25:ac:19:f4:62:25:fa:38:97:a6:0d:3e:40:
f4:40:ae:42:cc:89:26:77:26:67:19:7b:b5:00:42:
58:b3:88:f1:bc:04:e9:03:0a:fa:e0:3e:6d:c8:cd:
5a:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FB:06:42:30:F3:E3:9B:EF:BB:73:A7:D4:DD:B2:6F:E2:D4:46:EE:25
X509v3 Authority Key Identifier:
keyid:A2:3A:7C:63:54:71:18:AA:E4:97:F0:3E:13:12:1C:96:AB:34:54:7E
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
Subject Information Access:
CA Repository - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/
RPKI Manifest - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APOL/-wZCMPPjm--7c6fU3bJv4tRG7iU.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7482
9311
17709
24154-24155
131142
131591
131594
sbgp-ipAddrBlock: critical
IPv4:
43.240.104.0/22
60.244.0.0/16
101.136.0.0/14
103.36.116.0/22
103.231.48.0/22
124.218.0.0-124.219.127.255
202.178.128.0/17
203.79.128.0/17
203.201.32.0/20
203.207.32.0/20
210.58.0.0/16
210.63.192.0/18
210.85.0.0/16
210.200.0.0-210.202.55.255
210.202.64.0-210.203.127.255
218.35.0.0/16
218.187.0.0/16
219.91.0.0/17
222.156.0.0/15
222.251.0.0/17
223.22.0.0/15
IPv6:
2001:f10::/32
2400:fc80::/32
2404::/26
Signature Algorithm: sha256WithRSAEncryption
2d:12:21:46:10:5c:78:3f:a6:9d:bd:ba:41:27:9d:37:11:b6:
7f:3e:b4:c1:33:52:ba:f9:d1:57:55:be:d1:2e:9c:db:ec:ff:
0d:82:c3:e6:3c:6a:c7:e6:e3:65:48:15:6b:02:e9:b3:c2:cf:
5e:ef:e5:63:32:83:e9:e6:dd:cf:df:0b:a1:f1:9b:5a:9c:05:
e7:88:3d:24:8c:14:73:b3:6b:e9:81:7c:40:1d:9b:d6:a7:af:
32:84:ed:9e:c4:99:72:1a:6c:1d:dd:ae:20:d9:d3:92:ce:b1:
57:ca:cd:cd:7f:d3:24:b8:ff:6d:13:3f:b9:75:77:35:d4:d9:
e4:44:31:b2:9b:dd:40:eb:25:fc:32:57:ac:3d:ec:5f:9d:59:
8a:18:14:77:46:73:d6:70:44:27:0d:c4:76:b5:e3:e5:9b:70:
de:81:15:f5:d2:96:06:1f:0c:77:f9:fa:8b:f0:87:09:bc:e7:
56:e7:c3:7f:33:0e:5e:82:62:3e:95:30:20:64:cf:6e:c6:71:
5a:2e:0e:5f:0c:aa:30:ad:89:c0:71:f4:ac:7d:7b:00:04:64:
eb:94:32:b6:4e:5f:5e:e4:84:90:e2:b8:5d:05:c2:80:6b:17:
44:3e:19:b3:70:0b:a7:fe:73:f4:a5:88:88:25:05:15:f9:a4:
77:7b:6a:2b
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Mon Jan 15 22:54:32 2024 by rpki-client on console-ams.rpki-client.org